Samba Passwd Encryption, trouble with smbpasswd
Greg Barry
e6b564 at RL.gov
Wed Oct 4 15:36:04 GMT 2000
I have a SPARC20 running Solaris 2.5.1 and
Samba 2.07.
I'm trying to get passwd encryption to work from
the sun server to Win98/NT clients. The passwd
encryption part of it is working but a user is
unable to change their passwd using the
smbpasswd command.
With debugging turned on you get:
% smbpasswd
.
.
switch message SMBtrans (pid 24298)
become_user uid=(0,99) gid=(0,20)
dos_ChDir to /tmp
trans <\PIPE\LANMAN> data=532 params=23 setup=0
calling named_pipe
named pipe command on <LANMAN> name
Got API command 214 of form <zsT> <B516B16>
(tdscnt=532,tpscnt=23,mdrcnt=0,mprcnt=2)
Doing SamOEMChangePassword
api_SamOEMChangePassword: Change password for <e6b564>
search by name: e6b564
startsmbfilepwent_internal: opening file
/usr/local/samba/private/smbpasswd
getsmbfilepwent: skipping comment or blank line
getsmbfilepwent: skipping comment or blank line
getsmbfilepwent: skipping comment or blank line
getsmbfilepwent: entry invalidated for user root
getsmbfilepwent: entry invalidated for user daemon
getsmbfilepwent: entry invalidated for user bin
getsmbfilepwent: entry invalidated for user sys
getsmbfilepwent: entry invalidated for user adm
getsmbfilepwent: entry invalidated for user lp
getsmbfilepwent: entry invalidated for user smtp
getsmbfilepwent: entry invalidated for user uucp
getsmbfilepwent: entry invalidated for user nuucp
getsmbfilepwent: entry invalidated for user listen
getsmbfilepwent: entry invalidated for user nobody
getsmbfilepwent: entry invalidated for user noaccess
getsmbfilepwent: entry invalidated for user nobody4
getsmbfilepwent: entry invalidated for user guest
getsmbfilepwent: entry invalidated for user oracle
getsmbfilepwent: entry invalidated for user www
getsmbfilepwent: entry invalidated for user iwatch
getsmbfilepwent: entry invalidated for user h0032788
getsmbfilepwent: returning passwd entry for user e6b564, uid 1376
found by name: e6b564
endsmbfilepwent_internal: closed password file.
Password change for user: e6b564
findpty: Allocated slave pty /dev/pts/12
Dochild for user e6b564 (uid=0,gid=0)
Invoking '/usr/bin/passwd e6b564' as password change program.
expect: expected [*password:] received [New password:]
expect: sending [tiger00
]
expect: expected [*password:] received [
Re-enter new password:]
The process exited while we were waiting <-- This is
where things go BAD
copy_trans_params_and_data: params[0..2] data[0..0]
size=60
smb_com=0x25
smb_rcls=0
smb_reh=0
smb_err=0
smb_flg=136
smb_flg2=1
smb_tid=1
smb_pid=24297
smb_uid=0
smb_mid=1
smt_wct=10
smb_vwv[0]=2 (0x2)
smb_vwv[1]=0 (0x0)
smb_vwv[2]=0 (0x0)
smb_vwv[3]=2 (0x2)
smb_vwv[4]=56 (0x38)
smb_vwv[5]=0 (0x0)
smb_vwv[6]=0 (0x0)
smb_vwv[7]=60 (0x3C)
smb_vwv[8]=0 (0x0)
smb_vwv[9]=0 (0x0)
smb_bcc=5
[000] 00 56 00 00 00 .V...
write_socket(7,64)
write_socket(7,64) wrote 64
read_socket_data: recv failure for 4. Error = Connection reset by peer
<-- Problems here
receive_smb: length < 0!
receive_smb error (Connection reset by peer) exiting
dos_ChDir to /opt/local/samba/var
unbecome_user now uid=(0,0) gid=(0,0)
Closing connections
orasys (127.0.0.1) closed connection to service IPC$
Yielding connection to IPC$
Server exit (normal exit)
--
>From root you can change passwds with smbpasswd
with no problems.
I have another Sun Enterprise 3000 running Solaris 2.51
and Samba 2.03 and I have no problems.
Here is my smb.conf:
# Samba config file created using SWAT
# from WC62092.rl.gov (130.97.35.96)
# Date: 2000/09/27 10:36:58
# Global parameters
[global]
workgroup = HANFORD
server string = Orasys Samba Server, version 2.07
security = SHARE
encrypt passwords = Yes
min password length = 6
passwd program = /usr/bin/passwd %u
passwd chat = *password: %n\n *password: %n\n
passwd chat debug = Yes
username level = 1
unix password sync = Yes
debug level = 100
syslog = 3
log file = /usr/local/samba/var/log.%m
max log size = 2000
debug timestamp = No
name resolve order = host
deadtime = 15
local master = No
[cdrom]
comment = orasys's cdrom
path = /cdrom/cdrom0
revalidate = Yes
username = guest
create mask = 0775
guest ok = Yes
[cdrom1]
comment = orasys's second cdrom
path = /cdrom/cdrom1
revalidate = Yes
username = guest
create mask = 0775
guest ok = Yes
[share]
comment = oracle shared area
path = /home/oracle/samba/share
username = guest
create mask = 0775
guest ok = Yes
[devl]
comment = oracle developers shared area
path = /home/oracle/samba/devl
username = guest
writeable = Yes
create mask = 0775
guest ok = Yes
[netman]
comment = network configuration files
path = /home/oracle/samba/netman
revalidate = Yes
username = oracle
writeable = Yes
create mask = 0775
only user = Yes
browseable = No
[dba]
comment = Private Oracle DBA
path = /home/oracle/samba/dba
username = oracle
guest account = nobody
writeable = Yes
create mask = 0755
browseable = No
[homes]
comment = Orasys user home directories
writeable = Yes
--
Any help would be greatly appreciated.
Thanks,
Greg Barry, Systems Analyst
Lockheed Martin Services, Hanford, Richland WA
509-376-1652 e6b564 at rl.gov
-----------------------------------------------------------
More information about the samba
mailing list